Best Software for 2025 is now live!
View the Winners
SecurityScorecard
Editedit
Play Video
SecurityScorecard
By SecurityScorecard
Show rating breakdown
4.2 out of 5 stars
See all 75 SecurityScorecard reviews
Save to My Lists
Paid
Claimed
This profile has been claimed and optimized by SecurityScorecard.
Optimized profiles are more likely to have the most up-to-date content, fast response times, current pricing, and more.
Contact SecurityScorecard

SecurityScorecard Reviews & Product Details

Editadmin
Verified User in Research
AR
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about SecurityScorecard?

SecurityScorecard presents security metrics that are easy to understand and present to upper management. It has given me ammo to change some low-hanging security settings without burdening my staff. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

There can be some false positive when looking at the scorecards of vendors because they may use cloud resources which are shared by other companies so malware sources or IP reputation might have been affected by the other companies using the same resource. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

It is a fast way to give a surface look at the security postures of other vendors or peers. It allows me to push for security changes. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link

SecurityScorecard Overview

Editedit
What is SecurityScorecard?

Stopping sophisticated cyberattacks requires visibility beyond your organization. Security teams need a complete understanding of their attack surface and business ecosystem risk—including partners, contractors, third- and fourth-party vendors, and supply chains. As the industry leader in security ratings, SecurityScorecard provides actionable insights for over 12 million organizations so you can quantify trustworthiness, quickly respond to cyber risks, and strengthen cyber defenses. SecurityScorecard is a security ratings, response, and resilience company. As the industry leader in security ratings, we provide actionable insights so you can make fast, informed decisions that improve your defenses. SecurityScorecard offers the world’s most comprehensive platform for quantifying and reducing risk, so you can instantly know whether an organization deserves your trust and show others that you deserve theirs. With SecurityScorecard, you can quantify trustworthiness and instantly know the cyber risk of any company worldwide, including your business, competitors, vendors, and downstream suppliers. You can strengthen cyber defenses by accessing a stream of risk intelligence that pinpoints vulnerabilities, prioritizes next steps, and clarifies remediation plans. And you can verify vendor readiness by identifying cyber-risks posed by vendors and sub-tier suppliers throughout your ecosystem– and take action to ensure their problems don’t become your problems. What we offer: Supply Chain Cyber Risk: Your supply chain consists of your third and fourth parties as well as Nth parties that are all connected to your business. Vulnerabilities and threats in your supply chain can pose risks to your business operations. With SecurityScorecard, you can significantly reduce or eliminate the risk of compromise from a vendor or business partner. Offerings include: Third-Party Cyber Risk Management, Automatic Vendor Detection, Supply Chain Risk Intelligence, and Security Questionnaires. Threat Landscape: Go outside the wire to identify threats facing your organization and your supply chain. Leverage terabytes of data and AI-driven analytics to identify the threats that put your business at risk. Offerings include: Attack Surface Intelligence, Intelligence Feeds, and Vulnerability Intelligence. Security and Risk Operations: SecurityScorecard enables companies to see what a hacker sees across their own external attack surface so they can identify threats and take action before the bad guys have a chance to exploit critical vulnerabilities. Offerings include: External Attack Surface Management and Cyber Risk Quantification. Services: A focus on expert-led continuous improvement, actionable insights, and tailored strategies positions SecurityScorecard as a trusted partner in achieving and maintaining a robust cybersecurity posture. Offerings include: Digital Forensics & Incident Response, Advisory Services, Penetration Testing, Red Team, and Tabletop Exercises. MAX: SecurityScorecard MAX is a technology-enabled supply chain cyber risk managed service. Organizations leverage SecurityScorecard's technology, expertise, and partner ecosystem to minimize supply chain risk and gain tangible business outcomes.

SecurityScorecard Details
Product Website
Discussions
Languages Supported
English
Show LessShow More
Product Description

SecurityScorecard helps enterprises gain operational command of their security posture and the security posture of their ecosystems through continuous, non-intrusive monitoring. The company’s approach to security focuses on identifying vulnerabilities from an outside-in perspective, the same way a hacker would. SecurityScorecard’s proprietary SaaS platform offers an unmatched breadth and depth of critical data points including a broad range of risk categories such as Web, Application Security, Patching Cadence, Network Security, Hacker Chatter, Social Engineering, and Leaked Credentials, DNS Health, Endpoint Security, IP Reputation and Cubit Score. To receive an email with your company’s current score, please visit instant.securityscorecard.com.

How do you position yourself against your competitors?

Trusted Data: #1 cyber risk ratings platform with over 12M organizations continuously monitored through the most accurate, comprehensive, and actionable data set.

360° View: The most holistic platform with a true continuous 360° view of external risk and internal risk across your entire digital ecosystem.

Breadth of Certified Integrations: The industry’s largest marketplace of 90+ certified partner integrations across 10 use cases that fit into your daily workflows

Cyber Resilience Services: Pre and post breach response and services offered by industry-leading practitioners spanning Third-Party Risk Management, Intelligence-as-a-Service, and digital forensics, investigation, and response.

Trusted by 70% of the Fortune 1000.

Seller Details
Seller
SecurityScorecard
Company Website
Year Founded
2013
HQ Location
New York, New York
Twitter
@security_score
12,082 Twitter followers
LinkedIn® Page
www.linkedin.com
542 employees on LinkedIn®
Description

SecurityScorecard is a cybersecurity ratings company that provides organizations with insights into their security posture and that of their third-party vendors. By leveraging a comprehensive platform, SecurityScorecard assesses and monitors security risks through continuous data collection and analysis. Their services help businesses improve their cybersecurity resilience, manage vendor risks, and comply with regulatory requirements. For more information, visit their website at https://securityscorecard.com.

Kristina L.
KL
Overview Provided by:
Kristina LeBlanc

Recent SecurityScorecard Reviews

Priyanka P.
PP
Priyanka P.Small-Business (50 or fewer emp.)
3.5 out of 5
"Comprehensive Security Monitoring Made Easy"
SecurityScorecard provides a user-friendly platform that offers valuable insights into our cybersecurity posture. The ability to monitor our own an...
Read more
Verified User
A
Verified UserEnterprise (> 1000 emp.)
4.5 out of 5
"Insightful data, potential for more reporting"
The data presented is valuable and insightful, it helps to kick starty conversations with vendors regarding their cybersec controls. There are plen...
Read more
Verified User
C
Verified UserEnterprise (> 1000 emp.)
4.0 out of 5
"Very good"
it provides good information abouit our partners.
Read more
Security Badge
This seller hasn't added their security information yet. Let them know that you'd like them to add it.
0 people requested security information

SecurityScorecard Media

MAX is a comprehensive managed service that proactively identifies critical cybersecurity vulnerabilities and issues throughout your entire supply chain.
Play SecurityScorecard Video
MAX is a comprehensive managed service that proactively identifies critical cybersecurity vulnerabilities and issues throughout your entire supply chain.
Discover how Horiens enhanced its cybersecurity with SecurityScorecard. Watch our customer testimonial to see how they achieved an A rating, reduced security monitoring time by 83%, and improved their supply chain risk management.
Play SecurityScorecard Video
Discover how Horiens enhanced its cybersecurity with SecurityScorecard. Watch our customer testimonial to see how they achieved an A rating, reduced security monitoring time by 83%, and improved their supply chain risk management.
Dive into the latest SecurityScorecard research with Rob Ames, Staff Threat Researcher, and Travis Hawley, Former Air Force Intelligence Analyst, as they unravel the complexities of Volt Typhoon's recent compromise of 30% of Cisco RV320/325
Play SecurityScorecard Video
Dive into the latest SecurityScorecard research with Rob Ames, Staff Threat Researcher, and Travis Hawley, Former Air Force Intelligence Analyst, as they unravel the complexities of Volt Typhoon's recent compromise of 30% of Cisco RV320/325
Gain a complete understanding of your attack surface and business ecosystem risk. Know in an instant whether an organization deserves your trust and show others your deserve theirs.
Play SecurityScorecard Video
Gain a complete understanding of your attack surface and business ecosystem risk. Know in an instant whether an organization deserves your trust and show others your deserve theirs.
Editedit

Official Downloads

Answer a few questions to help the SecurityScorecard community
Have you used SecurityScorecard before?
Yes

Video Reviews

Review by James B.
SecurityScorecard review by James B.
Play SecurityScorecard review by James B.
SecurityScorecard review
See all video reviews

74 out of 75 Total Reviews for SecurityScorecard

4.2 out of 5
The next elements are filters and will change the displayed results once they are selected.
Search reviews
Popular Mentions
The next elements are radio elements and sort the displayed results by the item selected and will update the results displayed.
Hide FiltersMore Filters
The next elements are filters and will change the displayed results once they are selected.
  • Company SizeExpand/Collapse Company Size Filter
  • User RoleExpand/Collapse User Role Filter
  • CategoryExpand/Collapse Category Filter
  • IndustryExpand/Collapse Industry Filter
  • RegionExpand/Collapse Region Filter
The next elements are filters and will change the displayed results once they are selected.
  • Sort By:
    G2 Sort
74 out of 75 Total Reviews for SecurityScorecard
4.2 out of 5
  • Sort By:
    G2 Sort
74 out of 75 Total Reviews for SecurityScorecard
4.2 out of 5
  • Sort By:
    G2 Sort

SecurityScorecard Pros and Cons

How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Cons

Overall Review Sentiment for SecurityScorecardQuestion

Time to Implement
<1 day
>12 months
Return on Investment
<6 months
48+ months
Ease of Setup
0 (Difficult)
10 (Easy)
Log In
Want to see more insights from verified reviewers?
Log in to view review sentiment.
G2 reviews are authentic and verified.
Here's how.
Priyanka P.
PP
Technical Consultant
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about SecurityScorecard?

SecurityScorecard provides a user-friendly platform that offers valuable insights into our cybersecurity posture. The ability to monitor our own and third-party vendors' security ratings helps us proactively address potential risks Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

While SecurityScorecard provides valuable insights, some of the alerts can be too frequent or lack specificity, leading to alert fatigue. Additionally, the pricing structure may not be cost-effective for smaller organizations with tight budgets Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

SecurityScorecard helps us manage third-party risks by providing visibility into the security posture of our vendors. This proactive monitoring allows us to identify and address potential risks before they become critical issues, thereby strengthening our overall cybersecurity strategy. Additionally, the platform supports compliance efforts by offering insights and reports that align with various regulatory standards Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Computer Software
AC
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about SecurityScorecard?

It's easy of use is what makes it good. You can have it deployed and running in no time, as it is hosted. There are many times where your scorecard will already to be ready t go. I have only run into 1-2 times where Security Scorecard did not have a website in its database, and I had to wait for them to go out and fetch it. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

Could use better inegrations with other systems. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

It gives us an outside view of what the internet sees, allowing us to better identify any security issues we might have. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Banking
AB
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about SecurityScorecard?

The data presented is valuable and insightful, it helps to kick starty conversations with vendors regarding their cybersec controls. There are plenty of features to gather data, evidence and contact with Vendors to understand their infosec posture. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

There is room to improve further the autoamted reporting capabilities. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

It provides valuable information to strenght the TPRM program. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Steve D.
SD
Information Security Assessment Consultant
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: Organic
What do you like best about SecurityScorecard?

Accurate ratings and great customer service. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

Too much info is available. i find myself running down rabbit holes with a vendor - as if I am one of their network defenders. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

Security Scorecard provides and objective point of view about a company's cyber hygiene posture. It gathers whatever the internet shows, and display the results in terms of threats and specific cyber-hygiene categories. Their service gives us an independent assessment of a vendor - without having to request any information from the vendro. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Banking
UB
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about SecurityScorecard?

Great tool in moniotirng security score for own company and/or third parties. I like the folwing about Scorecard:

- Easy to understand

- Easy to use

- Customer Servie orientation

- Takes feedback to heart

- Allos to try out new features as a pilot Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

- False positives

- No aggregate scoring for enire Enterprise Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

Improving internal processes

Cotinuous monitoring of Third Parties Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Insurance
CI
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: Organic
Business partner of the seller or seller's competitor, not included in G2 scores.
What do you like best about SecurityScorecard?

it provides good information abouit our partners. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

its not easy to find or use. you can not save your work and go back to it. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

contious mnitoring of our vendors Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Analia P.
AP
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about SecurityScorecard?

I use it as one more input when reviewing the vendor security posture within the vendor security risk assessment process. I like it gives me detailed inputs to start asking things about the third party. The reports are detailed enough to submit them and wait for a targeted and not high-level answer. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

According to third-party feedback, unfortunately, it gives many false positives. I would say that 50% of the vendors I asked about Scorecard-> are not maintaining it and re-direct us to their security trust center with more accurate pentest on their domains. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

As I said, it's giving me further inputs to kick off conversations with third parties. I wouldn't say it's solving any problem but it's in our checklist in the 3rd parties and supplier assessment. Honestly, so far, it hasn't given us enough accurate information to detect risk exposure in the third party. They don't give much relevance to what SS says and redirect us to their pen tests. It's plenty of false positives (i.e., domains not owned by the scanned URL) in the Application and network security sections.

If we had to follow up each variation in SS we would need a person dedicate to that with no full assurance on adding any value, so, we are not following that "live". Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Subodh P.
SP
Principal Information Security Architect
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about SecurityScorecard?

SecurityScoreCard (SCC) is not just an external security posture rating platform, but it is also external attack surface management. With all the public data available, it shows a mirror to organizations how exactly security looks from the outside.

With every organization now using SCC scores, a kind of social pressure has been created that every organization must maintain a mark security posture, which is overall good for the community. Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

Anything related to your company name impacts the score, even your vendor services and all. Although that's the idea that the security posture of any company is not just its own infrastructure but all supplied ecosystem as well. However, sometimes test systems are also hosted with the same company domain, which can drop security scores a lot.

The assist discovery algorithm is not the best, especially for subdomains. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

Continuously monitoring external security posture in all areas of the security domain.

Social pressure to remain on top of our security.

Ability to detect external threats. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
KM
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about SecurityScorecard?

- SS provides various reporting options that allow me to target my security results message according to my audience. This is critical as we use results as contract leverage - agreement from the vendor for security control maintenance which can be observed on SS

- SS has a responsive support team. which is critical to me on time-sensitive projects.

-- SS engages its customers regularly to help improve and grow their use of the SS, and to obtain useful feedback from their user base Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

- SS must integrate Atlas with the rest of the product in order to create a holistic view of the vendor's security controls. If they do this, they have a powerhouse tool. Security controls go beyond what can be seen from the Internet or what is reported in the news. Administrative controls, awareness and phishing exercises I need to know about for a final score on a vendor.

- I would like it to be easier to manipulate the footprint/IP roster used to create reports. Case in point, I have business partners I assess who contract with an IT provider to manage their domain. I know the full score of the IT provider includes all domains it provides, and it is the true indicator of its security practices. But I need to report on the subdomain of my customer to gain credibility on my final assessment rating. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

-Quickly providing provable, unbiased data about the technical security control environment of third parties with whom we share data/connectivity. The SS information is used as part of my final security risk assessments.

- Provides breach history and company stats without me having to research

- SS provides a visual way to begin the security conversation - and continue it - with our vendors/third parties. It gives us leverage during contract renewals and initial signing

- Simply put, IT HELPS ME WITH MY WORKLOAD. I have too many assessments coming in to manage. SS ups my efficiency Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Richard H.
RH
Security Industry Advisor
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: G2 invite on behalf of seller
Incentivized Review
What do you like best about SecurityScorecard?

Security Scorecard is one of the most easy-to-use, intuitive pieces of software I have used in my 36-year working history. It is useful from the time you start using it. Great dashboard display, which then allows you to go deeper into findings and then, as an added bonus - it tells you how to remediate the problem. The software is so good that I have purchased it in the past 3 security roles I have had. I recommend it to security people I know, who have all been "wowed" by it. And did I mention Support? Support is fantastic! Review collected by and hosted on G2.com.

What do you dislike about SecurityScorecard?

There isn't a lot I dislike about Security Scorecard. In fact...I can't think of one item that annoys me! Maybe IF it included some information gathered from the Dark Web about my company... yeah, that would make it an 11/10 instead of a 10/10 rating. Review collected by and hosted on G2.com.

What problems is SecurityScorecard solving and how is that benefiting you?

Security Scorecard is showing me either 1- what I don't know (Patching Cadence, DNS Health etc.) or 2- what would take me hours/ days to gather and then more time to assess. With respect to my second point - it has reduced the likelihood of hiring a security analyst to locate, collect and analyse all the data that Security Scorecard does with the click of a button. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link

SecurityScorecard Comparisons

Compare Bitsight vs. SecurityScorecard
Compare Bitsight vs. SecurityScorecard
SecurityScorecardVSBitsight
Compare UpGuard vs. SecurityScorecard
Compare UpGuard vs. SecurityScorecard
SecurityScorecardVSUpGuard
Compare Tenable Nessus vs. SecurityScorecard
Compare Tenable Nessus vs. SecurityScorecard
SecurityScorecardVSTenable Nessus
Compare SecurityScorecard ratings to similar products

Top Rated SecurityScorecard Alternatives

UpGuard
(297)
4.5 out of 5
Bitsight
(43)
4.6 out of 5
Vanta
(1,594)
4.6 out of 5
See all SecurityScorecard Alternatives

Explore More

Best Photo Editing Software
RFP Templates
Order Fulfillment
Classroom Messaging
Anti Money Laundering (AML)
Cloud Storage Security
Microsoft Collaboration Tools
Data Center Infrastructure Management (DCIM)
Pros and Cons Details
SecurityScorecard
Contact SecurityScorecard